CVE-2026-43309
EUVD-2026-2857908.05.2026, 14:16
In the Linux kernel, the following vulnerability has been resolved:
md raid: fix hang when stopping arrays with metadata through dm-raid
When using device-mapper's dm-raid target, stopping a RAID array can cause
the system to hang under specific conditions.
This occurs when:
- A dm-raid managed device tree is suspended from top to bottom
(the top-level RAID device is suspended first, followed by its
underlying metadata and data devices)
- The top-level RAID device is then removed
Removing the top-level device triggers a hang in the following sequence:
the dm-raid destructor calls md_stop(), which tries to flush the
write-intent bitmap by writing to the metadata sub-devices. However, these
devices are already suspended, making them unable to complete the write-intent
operations and causing an indefinite block.
Fix:
- Prevent bitmap flushing when md_stop() is called from dm-raid
destructor context
and avoid a quiescing/unquescing cycle which could also cause I/O
- Still allow write-intent bitmap flushing when called from dm-raid
suspend context
This ensures that RAID array teardown can complete successfully even when the
underlying devices are in a suspended state.
This second patch uses md_is_rdwr() to distinguish between suspend and
destructor paths as elaborated on above.EnginsightAffected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 4.14.292 ≤ 𝑥 < 4.15 |
| linux | linux_kernel | 4.19.257 ≤ 𝑥 < 4.20 |
| linux | linux_kernel | 5.4.212 ≤ 𝑥 < 5.5 |
| linux | linux_kernel | 5.10.140 ≤ 𝑥 < 5.11 |
| linux | linux_kernel | 5.15.64 ≤ 𝑥 < 5.16 |
| linux | linux_kernel | 5.19.6 ≤ 𝑥 < 6.0 |
| linux | linux_kernel | 6.0.1 ≤ 𝑥 < 6.18.16 |
| linux | linux_kernel | 6.19 ≤ 𝑥 < 6.19.6 |
| linux | linux_kernel | 6.0 |
| linux | linux_kernel | 6.0:rc3 |
| linux | linux_kernel | 6.0:rc4 |
| linux | linux_kernel | 6.0:rc5 |
| linux | linux_kernel | 6.0:rc6 |
| linux | linux_kernel | 6.0:rc7 |
𝑥
= Vulnerable software versions
Debian Releases
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| bpftool6.18 |
| ||
| bpftool6.18-debuginfo |
| ||
| kernel-livepatch-6.18.16-18.222 |
| ||
| kernel6.18 |
| ||
| kernel6.18-debuginfo |
| ||
| kernel6.18-debuginfo-common-aarch64 |
| ||
| kernel6.18-debuginfo-common-x86_64 |
| ||
| kernel6.18-devel |
| ||
| kernel6.18-headers |
| ||
| kernel6.18-libbpf |
| ||
| kernel6.18-libbpf-debuginfo |
| ||
| kernel6.18-libbpf-devel |
| ||
| kernel6.18-libbpf-static |
| ||
| kernel6.18-modules-extra |
| ||
| kernel6.18-modules-extra-common |
| ||
| kernel6.18-tools |
| ||
| kernel6.18-tools-debuginfo |
| ||
| kernel6.18-tools-devel |
| ||
| perf6.18 |
| ||
| perf6.18-debuginfo |
| ||
| python3-perf6.18 |
| ||
| python3-perf6.18-debuginfo |
|
Vulnerability Media Exposure